7.7 High
AI Score
Confidence
Low
0.952 High
EPSS
Percentile
99.3%
Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.
seclists.org/fulldisclosure/2014/Jul/38
www.securityfocus.com/bid/51628
www.securitytracker.com/id?1026575
bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3923
exchange.xforce.ibmcloud.com/vulnerabilities/72585
security-tracker.debian.org/tracker/CVE-2011-3923
www.exploit-db.com/exploits/24874